METHOD AND APPARATUS FOR CRYPTOGRAPHIC STATELESS 



PROTOCOL USING ASYMMETRIC ENCRYPTION 

Technical Field 

The invention relates to the field of client-server communications in a computer network such 
as the Internet, and more particularly to methods of performing a secure stateless server protocol 
where the client stores the encrypted state information. 

Background Art 

Computer networks such as the Internet involve communication between a first subset of 
computers which are the source of information and documents, referred to herein as "servers", and 
a second subset of computers which request such information and documents from servers, referred 
to herein as "clients". The most ubiquitous system for exchange of information between clients and 
servers is the World Wide Web. The following terms are well understood in the art and have been 
defined in a Glossary set out in United States Patent no. 5,961,601 owned by the applicant herein, 
which patent is incorporated herein by reference: World Wide Web; Web Browser; Universal 
Resource Locator (URL); Hyperlink; Hypertext Markup Language (HTML); Hypertext Transfer 
Protocol (HTTP). Such meanings are adopted herein unless a different meaning is specified. Clients 
obtain documents formatted in HTML from servers over the Internet using HTTP by linking an 
HTML-compatible browser to the server's URL. 

HTTP is a stateless protocol in that each request sent from a client using the protocol is 
treated independently. The server does not keep any record of previous requests (that is, an HTTP 
communication does not carry with it any state information). In that case the server is referred to 
as a "stateless" server. Such a stateless protocol has advantages in terms of server efficiency. A 
stateless server is faster and more scalable as it is not required to store the state information of 
multiple clients. In many situations, however, it is useful for the client to retain information about 
a session after the session is closed, and then communicating the state information to the server when 
the next communication between that client and that server is made. See United States patent no. 
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5,774,670 Montulli issued June 30, 1998 to Netscape Communications Corp. and United States 
patent no. 5,774,670 Montulli issued October 20, 1998 also to Netscape Communications Corp. 
which describe the communication of state information from the server to the client in a state object 
called a "cookie", which is stored at the client and contains the URL to which it is to be repeated 
back. A client containing such state information is referred to as "stateful". 

Sometimes it may be undesirable for a client to modify the "cookie" or token which it is 
storing (cookies or tokens are types of information containing objects referred to herein as "state 
objects"). For example, where the token contains an expiry date, it is undesirable to allow the client 
to modify that expiry date. Consequently a method involving the encryption of the token has been 
developed. See United States patent no. 6,065,117 White issued May 16, 2000 to International 
Business Machines Corp. According to that method, a symmetric method of encryption is used. A 
seed value, which is some dynamic variable such as the client's network address, is used to generate 
a symmetric key to encrypt a token sent to the client. The encrypted token is returned to the client. 
The token therefore cannot be read or modified by the client. It may be important however to permit 
the client to read, but not modify, the token or "cookie". There is a need therefore for a method of 
providing secure state information between a stateless server and a stateful client which permits the 
client to read but not modify the state object. 

Methods of public key encryption are well known in the art. Unlike symmetric methods of 
encryption, where the sender and the recipient use the same code to encrypt and decrypt the message, 
public key encryption is asymmetric encryption. In this form of encryption, the server has a pair 
of keys. One key is a public key, which can be made freely available to clients. The other key 
carefully guarded by the server is a private key. A message encoded with the particular public key 
can only be decoded using the corresponding private key, and vice versa. 

Disclosure of Invention 

The present invention therefore provides a method of communicating state information 
between a server and a client having a memory, the method comprising the steps of i) providing an 
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asymmetric encryption method having a public key provided to said client and the server and a 
private key provided to the server; ii) the client communicating a client request to the server to 
perform a server action; iii) the server responsive to receiving the client request, performing the 
server action and creating a state object containing post-action state information; iv) encrypting the 
state object using the private key; v) communicating the encrypted state object and a result of the 
server action to the client; and vi) storing the encrypted state object in the client memory. The 
method according to the invention may comprise the further step of the client decrypting the state 
object using the public key. According to a further aspect of the invention, the method further 
comprises the steps of: vii) the client communicating a subsequent client request to the server to 
perform a server action and the server receiving from the client the encrypted state object with the 
subsequent client request; and viii) the server, responsive to receiving the subsequent client request, 
decrypting the received encrypted state object using the public key. 

According to a further aspect of the invention, the invention further comprises the step of: 
ix) the server, after decrypting the received encrypted state object, verifying whether the received 
state object has been modified. According to a further aspect of the invention, the invention further 
comprises the steps of: x) the server, after verifying that the received state object has not been 
modified, using state information contained therein to perform the requested action; xi) responsive 
to performing the requested action, replacing previous state information with new state information 
in the state object; xii) encrypting the state object with the private key; and xiii) sending the 
encrypted state object and a result of the server action to the client. 

The present invention further provides a data processing system for communicating state 
information between a server and a client having a memory, the data processing system comprising: 
i) means for receiving a client request to perform a server action; ii) means, responsive to the client 
request receiving means, for performing the server action and creating a state object containing post- 
action state information; iii) means for encrypting the state object comprising an asymmetric enc- 
ryption method having a public key provided to the client and the server and a private key provided 
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to the server; and iv) means for communicating the encrypted state object and a result of the server 
action to the client. 

According to a further aspect of the invention, the invention further comprises: v) means for 
5 receiving from the client the encrypted state object with a subsequent client request to perform a 
server action; vi) means, responsive to the means for receiving the subsequent client request, for 
decrypting the received encrypted state object using the public key; and vii) means for verifying 
whether the received state object has been modified. According to a further aspect of the invention, 
the invention further comprises viii) means, responsive to the verifying means, for using state 
10 information contained in the state object to perform the requested server action; ix) means for 
replacing previous state information with new state information in the state object; x) means for 
H encrypting the state object using the private key; and xi) means for sending said encrypted state 
'!ri object and a result of the server action to the client. According to a further aspect of the invention, 
1 the invention further comprises means for receiving said encrypted state obj ect; means for decrypting 
1 5i:Q said state object using said public key; and means for storing said encrypted state object. 

;L The invention further comprises a computer program product for communicating state 

H information between a server and a client having a memory and provided with a public key of an 
iji asymmetric encryption method, the computer program product comprising: a computer usable 
20:^ medium having computer readable program code means embodied in the medium for receiving a 
client request to perform a server action; the computer usable medium having computer readable 
program code means embodied in the medium, responsive to the client request receiving means, for 
performing the server action and creating a state object containing post-action state information; the 
computer usable medium having computer readable program code means embodied in the medium 
25 for encrypting the created state object with the private key of the asymmetric encryption method; 
and the computer usable medium having computer readable program code means embodied in the 
medium, responsive to the encrypting means, for sending the encrypted state object and a result of 
the server action to the client. 
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According to a further aspect of the invention, the invention further comprises: computer 
readable program code means embodied in the medium for receiving from the client the encrypted 
state object with a subsequent client request to perform a server action; computer readable program 
code means embodied in the medium, responsive to the means for receiving the subsequent client 
request, for decrypting the received encrypted state object using the public key; and computer 
readable program code means embodied in the medium, responsive to the decrypting means, for 
verifying that the received state object whether the received state object has been modified. 

The invention further comprises a computer program product for communicating state 
information between a server and a client having a memory, the server provided with a public key 
and a private key of an asymmetric encryption method and the client provided with a public key of 
an asymmetric encryption method, the computer program product comprising: a computer usable 
medium having computer readable program code means embodied in the medium for sending a 
client request to perform a server action; the computer usable medium having computer readable 
program code means embodied in the medium for receiving the results of the server action and a 
state object containing post-action state information wherein the state object is encrypted with the 
private key of the asymmetric encryption method, and means for storing the state object; and the 
computer usable medium having computer readable program code means embodied in the medium 
for decrypting the state obj ect with the public key of the asymmetric encryption method. According 
to a further aspect of the invention the computer program product further comprises computer 
readable program code means embodied in the medium for replacing previous state information with 
new state information in the state object; computer readable program code means embodied in the 
medium for encrypting the state object using the private key; and computer readable program code 
means embodied in the medium for sending the encrypted state object with new state information 
and a result of the server action resulting from the subsequent client request to the client. 

Brief Description of Drawings 

In drawings which disclose a preferred embodiment of the invention: 
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Fig. 1 is a schematic illustration of a computer network according to the present invention; 
Fig. 2 is a block diagram illustrating a data processing system for implementing the 
invention; and 

Fig. 3 is a flow chart illustrating the method of the invention. 

Best Mode(s) For Carrying Out the Invention 

With reference to Fig. 1, a computer network is designated generally as 10. Network 10 
includes a client 12 and a server 14. While in the preferred embodiment such network is the Internet, 
it will be apparent to those skilled in the art that the present invention also has application in any 
local or wide area network or "intranet" incorporating one or more clients and one or more servers. 

Fig. 2 illustrates a data processing system applicable to either the client 12 or server 14. It 
comprises a memory 20 which communicates with a central processing unit 22 by means of bus 24. 
Memory 20 stores an operating system 26 and applications programs which include an asymmetric 
encryption program 28. Memory 20 also stores, in the case of the client, the public key 30 for the 
encryption program, and in the case of the server 14 both the public key 30 and private key 32, and 
stores the state object 16. 



With reference to Fig. 3, the client 12 sends a stateless protocol request, such as an HTTP 
protocol request, to server 14. Server 14 collects the requested information, and forms a state object 
16 with the desired state information, which may include the server's URL for returning the state 
object. Server 14 encrypts the state object using its private key. Server 14 sends the encrypted state 
object to client 12 along with the requested information. The state object is stored in the client's 
memory. The client can then use the server's public key to look at the state object, but cannot 
modify the state object without corrupting it. When the client 12 makes another request to server 
14 the encrypted state object is returned with the request and the server uses its public key to verity 
that the state object has not been tampered with. It then obtains the requested information. If a new 
or updated state object is desired, it prepares and encrypts the new state object with its private key. 
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The requested information and encrypted state object is then returned to the client 12 and the 
encrypted state object 16 is again saved in the memory of client 12. 

The present invention is described above as a computer-implemented method and data 
processing system. It may also be embodied as a computer hardware apparatus, computer software 
code or a combination of same. The invention may also be embodied as a computer-readable storage 
medium embodying code for implementing the invention. Such storage medium may be magnetic 
or optical, hard or floppy disk, CD-ROM, firmware or other storage media. 

As will be apparent to those skilled in the art in the light of the foregoing disclosure, many 
alterations and modifications are possible in the practice of this invention without departing from 
the spirit or scope thereof Accordingly, the scope of the invention is to be construed in accordance 
with the substance defined by the following claims. 
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